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" 7"/7e MAILING DATE of this communication appears on the cover sheet with the correspondence address - — 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM - - 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of tinae may be available under the provisions of 37 CFR i . 1 36(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely 

■ L^i?rf '?K-^ 'f specified above the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication 

- Failure o reply withtn the set or extended penod for reply will, by statute, cause the application to become ABANDONED (35 U S C S 1 33) 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed may reduce anv 
earned patent term adjustment. See 37 CFR 1.704(b). ' y=""^«^"y 

Status 

1 )IEI Responsive to communication{s) filed on 29 June 2000 . 
2a)D This action is FINAL. 2b)S This action is non-final. 

3) 0 Since this application is in condition for allowance except for formal nnatters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 C D 11 453 0 G 213 
Disposition of Claims 

4) ^ Claim(s) 1^ is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) n Claim(s) is/are allowed. 

6) 13 Claim(s) 1^ is/are rejected. 

7) 0 Claim(s) is/are objected to. 

8) 0 Ciaim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10) E1 The drawing(s) filed on 29 June 2000 is/are: a)D accepted or b)S objected to by the Examiner. 

Applicant may not request that any objection to the drawlng(s) be held in abeyance. See 37 CFR 1 .85(a). 

11) 0 The proposed drawing\:orrection filed on 



, is: a)n approved b)n disapproved by the Examiner 



If approved, corrected drawings are required in reply to this Office action. 

12) 0 The oath or declaration "is objected to by the Examiner. 
Priority under 35 U.S.C. §§ 119 and 120 

13) n Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)nAII b)n Some*c)n None of: 

1 Certified copies of the priority documents have been received. 
2.n Certified copies of the priority documents have been received in Application No. 



3.n Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

14) n Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 1 19(e) (to a provisional application), 
a) □ The translation of the foreign language provisional application has been received. 

15) 0 Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 120 and/or 121. 
Attachment(s) 



1) K Notice of References Cited (PTO-892) 

2) D Notice of Draftsperson's Patent Drawing Review (PTO-948) 

3) n Information Disclosure Statement(s) (PTO-1449) Paper No(s) 



4) Q Interview Summary (PTO-413) Paper No(s). 

5) □ Notice of Informal Patent Application (PTO-1 52) 

6) □ Other: 



U.S. Patent and Trademark Office 
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DETAILED ACTION 



Claims 1-20 are presented for examination. 



Drawings 



2. The drawings are objected to because figure 1 is too big that holds are punched through it 
when inserted in the application file. A proposed drawing correction or corrected drawings are 
required in reply to the Office action to avoid abandonment of the application. The objection to 
the drawings will not be held in abeyance. 



3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the United 
States before the invention thereof by the applicant for patent, or on an international application by another who 
has fulfilled the requirements of paragraphs (1), (2), and (4) of section 371(c) of this title before the invention 
thereof by the applicant for patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act of 1999 
(AIPA) and the Intellectual Property and High Technology Technical Amendments Act of 2002 
do not apply when the reference is a U.S. patent resulting directly or indirectly from an 
international application filed before November 29, 2000. Therefore, the prior art date of the 
reference is determined under 35 U.S.C. 102(e) prior to the amendment by the AIPA (pre-AIPA 
35 U.S.C. 102(e)). 



Claim Rejections - 35 USC §102 
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4. Claims 1-19 are rejected under 35 U.S.C. 
-(hereinafter Haverstock), US 2002/0038357. " 
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102(e) as being anticipated by Haverstock et al 



5. As per claims 1 and 12, Haverstock taught the claimed invention including a 
computer-implemented method for controlling access to documents during a workflow (pp. 
0009, 0012, 0027), comprising: 

a. upon entry of a base document into a workflow, creating a working copy of the 
base document (pp. 0018, 0025); 

b. selectively providing a user access to either the base document or the working 
copy of the base document depending upon the identity of a user (pp. 0046, 0057, 
0060, 0065-0071); and 

c. selectively providing access to perform operations on the working copy of the 
base document depending upon the identity of a user (pp. 0057, 0060, 0066- 
0071). 

6. As per claim 2, Haverstock taught the invention substantially as claimed in claim 1 . 
Haverstock further taught the method to further comprising: 

a. storing access control list data in relation to the base document, the access control 
list data defining access controls on performing operations of the working copy of 
the base document (pp. 0063, 0065-0071); and 

b. storing security descriptor data in relation to the base document and the working 
copy of the base document, the security descriptor data defining access controls 
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on reading the base document and the working copy of the base document (pp. 



0063; 0065-0066, 0069). 



7. As per claims 3-4, Haverstock taught the invention substantially as claimed in claim 2. 
Haverstock further taught that wherein the step of selectively providing access to perform 
operations on the working copy of the base document depending upon the identity of a user (pp. 
0065-0066), further comprises: 



a. determining using the access control list data stored in relation to the base 
document that a user has/does not have permission to perform an operation on the 
copy of the base document (pp. 0057, 0063, 0065-0066, 0070-0071); and 

b. allowing/denying the user to perform the operation on the copy of the base 
document (pp. 0057). 



8. As per claims 5-6, Haverstock taught the invention substantially as claimed in claim 2. 
Haverstock further taught wherein the access control list data comprises information identifying 
for each of a plurality of operations, the set of users that have permission to perform the 
operation, and said act of selectively providing access to perform operations on the working copy 
of the base document depending upon the identity of a user (pp. 0065-0071), further comprises: 

a. referencing the information identifying for each of a plurality of operations, the 
set of users that have permission to perform the operation (pp. 0067-0071); and 

b. if the user is/is not in the set of users that have permission to perform the 
operation, providing/denying access to the operation (pp. 0057). 
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9. As per claim 7, Haverstock taught the invention substantially as claimed in claim 5. 
Haverstock further taught that wherein the-setof users are defmedin terms of the roles thafhave- 
permission to perform the operation (pp. 0057, 0060, 0065-0066), and said act of referencing the 
information identifying for each of a plurality of operations, the set of users that have permission 
to perform the operation (pp. 0065-0071), further comprises: 

a. resolving for the user the set of roles to which the user has been assigned (pp. 
0057); and 

b. determining using the set of roles to which the user has been assigned and the set 
of users defined in terms of the roles that have permission to perform the 
operation, whether the user has permission to perform the requested operation 
(pp. 0065-0071). 

10. As per claims 8-9, Haverstock taught the invention substantially as claimed in claim 2. 
Haverstock further taught wherein the step of selectively providing a user access to either the 
base document or the working copy of the base document depending upon the identity of a user 
(pp. 0065-0066), further comprises: 

a. determining using the security descriptor data stored in relation to the base 
document and the working copy document, that a user has/does not have 
permission to read the working copy of the base document (pp. 0057, 0063, 0065- 
0066, 0070-0071); and 

b. providing/denying the user access to the working copy of the base document (pp. 
0057). 
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11. As per claim 10, Haverstock taught the invention substantially as claimed in claim 2. 
Haverstock further taught wherein the security descriptor data comprises information identifying 
the set of users that have permission to read each of the base document and the working copy of 
the base document (pp. 0057, 0060, 0065-0066), and said act of selectively providing access to 
either the base document or the working copy of the base documents depending on the identity of 
the user (pp. 0065-0071), further comprises: 

a. referencing the information identifying the set of users that have permission to 
read each of the base document and the working copy of the base document (pp. 
0067-0071); and 

b. if the user is in the set of users that have permission to read the working, copy of 
the base document, providing access to the working copy of the base document 
(pp. 0057). 

12. As per claim 11, Haverstock taught the invention substantially as claimed in claim 10. 
Haverstock further taught wherein the set of users are defined in terms of the roles that have 
permission to read each of the base document and the working copy of the base document, and 
said act of referencing the information identifying the set of users that have permission to read 
each of the base document and the working copy of the base document (pp. 0065-0071), further 
comprises: 

a. resolving for the user the set of roles to which the user has been assigned (pp. 
0057); and 
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b. determining using the set of roles to which the user has been assigned and the set 
of user defined in terms of the roles that have permission to read each of the base 
document and the working copy of the base document, whether the user has 
permission to read the base document or the working copy of the base document 
(pp. 0065-0071). 



13. As per claim 13, Haverstock taught the claimed invention including a system for 
providing document isolation in a workflow environment (pp. 0009, 0012, 0027), comprising: 
a. a processor, wherein said processor is operable to execute instructions for 
performing the following acts (pp. 001 1): 

i. maintaining for a base document undergoing a publishing workflow, a 
copy of the base document (pp, 001 8, 0025); 

ii. maintaining access control data in relation to the base document and the 
copy of the base document (pp. 0063, 0065-0066); and 

iii. determining based on the access control data, whether a user may access 
the base document or the copy of the base document (pp. 0057, 0065- 
0071). 



14. As per claim 14, Haverstock taught the invention substantially as claimed in claim 13. 
Haverstock further taught wherein the access control data comprises security descriptor data 
identifying the set of users that have permission to read the base document and the copy of the 
base document (pp. 0057, 0065-0071). 
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15. As per claim 15, Haverstock taught the invention substantially as claimed in claim 14. 
Haverstock further taught wherein said processor is operable to execute instructions for 
performing the following further acts: 

a. referencing the security descriptor data (pp. 0067-007 1 ); and 

b. determining that a user should be directed to the copy of the base document based 
on the security descriptor data (pp. 0057, 0060, 0066-0071), 

16. As per claim 16, Haverstock taught the invention substantially as claimed in claim 15. 
Haverstock further taught wherein the security descriptor data identifies a set of roles 
corresponding to the set of users that have permission to read the base document and the copy of 
the base document, and wherein said processor is operable to execute instructions for performing 
the further act of determining the set of roles that a user has been assigned (pp. 0057, 0060, 
0065-0071). 

17. As per claim 17, Haverstock taught the invention substantially as claimed in claim 13. 
Haverstock further taught wherein the access control data comprises access control list data 
identifying the set of users that have permission to perform operations on the copy of the base 
document (pp. 0057, 0065-0071). 



18. As per claim 18, Haverstock taught the invention substantially as claimed in claim 17. 
Haverstock further taught wherein said processor is operable to execute instructions for 
performing the following further acts: 
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a. referencing the access control list data (pp. 0067-0071).; and 

b. determining that a user should be allowed to perform an operation on the copy of 
the base document based on the access control list data (pp. 0057, 0060, 0066- 
0071). 

19. As per claim 1 9, Haverstock taught the invention substantially as claimed in claim 1 8. 
Haverstock further taught wherein the access control list data identifies a set of roles 
corresponding to the set of users that have permission to perform operations on the copy of the 
base document, and wherein said processor is operable to execute instructions for performing the 
further act of determining the set of roles that a user has been assigned (pp. 0057, 0060, 0065- 
0071). 

20. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

21. Claim 20 is rejected under 35 U.S.C, 103(a) as being unpatentable over Haverstock, US 
2002/0038357, in view of Sudama et al (hereinafter Sudama), US 5,555,375. 

22. As per claim 20, Haverstock taught the claimed invention including a method of updating 
access controls to reflect the addition of a new operation (pp. 0060 access privilege changed) that 
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may be performed on a copy of a base document, in a system wherein access to operations to be 
performed on a copy of the base document are controlled using an access control list which 
identifies the operations that may be performed and the roles that a user must have to access 
those operations (pp. 0067-0071), comprising: 

a. updating the access control list (pp. 0060); 

23. Haverstock did not specifically teach the method to comprise: assigning a unique 
identifier to the new operation; updating the access control list to include an entry for the unique 
identifier for the new operation or to include an entry identifying the roles that have access to the 
new operation. Sudama taught to assign unique identifier to operations (col. 8, lines 55-57) for 
management purpose. It would have been obvious to one of ordinary skill in the art at the time 
the invention was made to combine the- teachings of Haverstock and Sudama because Sudama's 
teaching of assigning unique identifiers to operations to provide management benefits enables 
Haverstock's method to manage and keep track of the types of operations performed on the 
documents using the identifiers. 

24. Haverstock and Sudama did not specifically teach the method to comprise updating the 
access control list to include an entry for the unique identifier for the new operation or to include 
an entry identifying the roles that have access to the new operation. However, in order to add the 
new operation and enable the roles to have access to the new operation, the access control list 
must be updated so the authentication to the existing users is valid with the new operation since 
the access control list is in correspondence with the operations and user roles. It is an essential 
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step, whether the step is done manually or automatically, that cannot be skipped. It would have 
been obvious to one of ordinary skill in the art at the time the invention was made to recognize 
that once a new operation is introduce in Haverstock and Sudama's method, the access control 
list must be edited to provide up to date authentication to provide existing users, that have the 
privilege, to execute the new operation. 



Conclusion 

25. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

Viets et al, US 6,357,010, disclosed document access controlling. 

Serbinis et al, US 6,584,466, disclosed internet based document management. 

Bacon et al, US 6,442,563, disclosed a workflow system. 

Rosenthal et al, US 6,31 1,192, disclosed workflows initiating in a management system. 

Beizer et al, US 6,240,414, disclosed shared data conflicts resolving. 

Ouchi, US 6,539,404, disclosed role based workflow system. 

Du, US 6,052,684, disclosed workflow process in workflow system. 

Barkley, US 6,088,679, disclosed role-based access control. 

Young et al, US 6,470,353, disclosed access control updating. 

26. A shortened statutory period for reply to this Office action is set to expire THREE 
MONTHS from the mailing date of this action. 
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27. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kenny Lin whose telephone number is (703)305-0438. The 
examiner can normally be reached on 8 AM to 5 PM Tuesday to Friday and every other Monday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Meng-Ai An can be reached on (703)305-9678. Additionally, the fax numbers for 
Group 2100 are as follows: 

Official Responses: (703) 746-7239 

After Final Responses: (703) 746-7238 

Draft Responses: (703) 746-7240 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703)305-6121. 
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